ATP200 Anti-Malware is blowing up on Microsoft.VCLibs.110.00_11.0.51106.1_x86__8wekyb3d8bbwe.Appx

ChipConnJohn
ChipConnJohn Posts: 44  Freshman Member
Zyxel Certified Network Administrator - Security Zyxel Certified Network Administrator - Nebula First Comment Fourth Anniversary

Message is:
Virus infected SSI:N Type:Threat Intelligence Machine Learning Virus:Malicious Virus File:Microsoft.VCLibs.110.00_11.0.51106.1_x86__8wekyb3d8bbwe.Appx

I've scanned the hash and it's Undetected in VirusTotal.

The IP address that is being connected to it is associated with edgecastcdn and the IP is not listed in BrightCloud. The IP is being connected to by several processes including, the Print Spooler, Adobe Creative Cloud, and other things.

Anyone seeing this?

Best Answers

  • Zyxel_Kevin
    Zyxel_Kevin Posts: 885  Zyxel Employee
    Zyxel Certified Network Administrator - Security Zyxel Certified Sales Associate 100 Answers 500 Comments
    Answer ✓

    Hi @ChipConnJohn ,

    The File hash is not in latest TIML signature.

    Please kindly check you have installed the latest signature .

    And check if the issue still persist.

    Thank you

  • ChipConnJohn
    ChipConnJohn Posts: 44  Freshman Member
    Zyxel Certified Network Administrator - Security Zyxel Certified Network Administrator - Nebula First Comment Fourth Anniversary
    Answer ✓

    It has stopped alerting. Thanks.

All Replies

  • Zyxel_Kevin
    Zyxel_Kevin Posts: 885  Zyxel Employee
    Zyxel Certified Network Administrator - Security Zyxel Certified Sales Associate 100 Answers 500 Comments

    Hi @ChipConnJohn ,

    Greeting Forum, Could you kindly provide the IP address and FIle hase ?

    We will check that.

    Thank you

  • ChipConnJohn
    ChipConnJohn Posts: 44  Freshman Member
    Zyxel Certified Network Administrator - Security Zyxel Certified Network Administrator - Nebula First Comment Fourth Anniversary

    Hash:

    1A4EA694B87EE8542F6FE82D6F247EEF

    IP: 72.21.81.240

    Thanks!

  • Zyxel_Kevin
    Zyxel_Kevin Posts: 885  Zyxel Employee
    Zyxel Certified Network Administrator - Security Zyxel Certified Sales Associate 100 Answers 500 Comments
    Answer ✓

    Hi @ChipConnJohn ,

    The File hash is not in latest TIML signature.

    Please kindly check you have installed the latest signature .

    And check if the issue still persist.

    Thank you

  • ChipConnJohn
    ChipConnJohn Posts: 44  Freshman Member
    Zyxel Certified Network Administrator - Security Zyxel Certified Network Administrator - Nebula First Comment Fourth Anniversary
    Answer ✓

    It has stopped alerting. Thanks.

Security Highlight